--
You received this message because you are subscribed to the Google Groups "Native-Client-Discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to native-client-di...@googlegroups.com.
To post to this group, send email to native-cli...@googlegroups.com.
Visit this group at http://groups.google.com/group/native-client-discuss.
For more options, visit https://groups.google.com/d/optout.
--no-sandbox disables one of Chrome's more important security mechanisms. This is sometimes necessary for development, for example when you want to redirect stdout to disk and the sandbox would otherwise prevent writing data to the disk. It would be seriously unwise to disable the sandbox when surfing the web, however. Only disable it if there is a specific reason to do so. The warning means --no-sandbox is dangerous and you should only use it if you really know what you're doing.
On Wed, Jul 23, 2014 at 5:25 PM, Nathan L. wrote:
I'm getting this message when starting Chrome with the --no-sandbox flag. Any one here knows why please?I'm new to Google NaCl/PNaCl framework. I'm trying to build, run and debug my first PNaCl sample app. I'm working with pepper_36 & Chrome "Version 36.0.1985.125 m" on Windows 7.
Here's the command:"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-sandboxThanks,Nathan
--
You received this message because you are subscribed to the Google Groups "Native-Client-Discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to native-client-discuss+unsub...@googlegroups.com.
On Wednesday, July 23, 2014 5:52:17 PM UTC-7, Nick Bray wrote:--no-sandbox disables one of Chrome's more important security mechanisms. This is sometimes necessary for development, for example when you want to redirect stdout to disk and the sandbox would otherwise prevent writing data to the disk. It would be seriously unwise to disable the sandbox when surfing the web, however. Only disable it if there is a specific reason to do so. The warning means --no-sandbox is dangerous and you should only use it if you really know what you're doing.On Wed, Jul 23, 2014 at 5:25 PM, Nathan L. wrote:
I'm getting this message when starting Chrome with the --no-sandbox flag. Any one here knows why please?I'm new to Google NaCl/PNaCl framework. I'm trying to build, run and debug my first PNaCl sample app. I'm working with pepper_36 & Chrome "Version 36.0.1985.125 m" on Windows 7.
Here's the command:"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-sandboxThanks,NathanTo post to this group, send email to native-cli...@googlegroups.com.--
You received this message because you are subscribed to the Google Groups "Native-Client-Discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to native-client-discuss+unsub...@googlegroups.com.
Visit this group at http://groups.google.com/group/native-client-discuss.
For more options, visit https://groups.google.com/d/optout.
--
You received this message because you are subscribed to the Google Groups "Native-Client-Discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to native-client-di...@googlegroups.com.
<path>
. For PNaCl, this provides a convenient way to access the nexe that is a result of translating your pexe. This can then be loaded with the file <path>
command.To unsubscribe from this group and stop receiving emails from it, send an email to native-client-discuss+unsubscri...@googlegroups.com.
To post to this group, send email to native-cli...@googlegroups.com.
Visit this group at http://groups.google.com/group/native-client-discuss.
For more options, visit https://groups.google.com/d/optout.
Google's documentation:(gdb) remote get nexe <path-to-save-translated-nexe-with-debug-info>(gdb) file <path-to-save-translated-nexe-with-debug-info>remote get nexe <path>This saves the application’s main executable (nexe) to<path>
. For PNaCl, this provides a convenient way to access the nexe that is a result of translating your pexe. This can then be loaded with thefile <path>
command.
To unsubscribe from this group and stop receiving emails from it, send an email to native-client-di...@googlegroups.com.
--no-sandbox
Turns off the Chrome sandbox (not the Native Client sandbox). This enables the stdout and stderr streams, and lets the debugger connect.
I'm not sure about enabling stdout & stderr streams, but he key point here I've noticed is letting the debugger to connect. So, if nacl-gdb is able to connect to Chrome, this means that Chrome has accepted/honored --no-sandbox flag. So, the "unsupported command-line flag" is misleading.
C:\NaCl_SDK\pepper_36\getting_started\part1>C:\NaCl_SDK\pepper_36\toolchain\win_x86_newlib\bin\x86_64-nacl-gdb
(gdb) target remote localhost:4014
Remote debugging using localhost:4014
0x000000000fd000a0 in ?? ()
(gdb) remote get nexe C:/NaCl_SDK/logs/temp.nexe
Successfully fetched file "nexe".
(gdb) file C:/NaCl_SDK/logs/temp.nexe
A program is being debugged already.
Are you sure you want to change the file? (y or n) y
Reading symbols from C:/NaCl_SDK/logs/temp.nexe...done.
(gdb) remote get irt C:/NaCl_SDK/logs/nacl_irt_x86_64.nexe
Successfully fetched file "irt".
(gdb) nacl-irt C:/NaCl_SDK/logs/nacl_irt_x86_64.nexe
Reading symbols from C:/NaCl_SDK/logs/nacl_irt_x86_64.nexe...(no debugging symbols found)...done.
(gdb) break hello_tutorial.cc:98
Breakpoint 1 at 0x20c00: file hello_tutorial.cc, line 98.
(gdb) continue
Continuing.
Thanks for all your help.
Nathan L.
To unsubscribe from this group and stop receiving emails from it, send an email to native-client-di...@googlegroups.com.
Glad it worked! I think "unsupported" is not intended to mean that it doesn't do anything. Chrome will honor the flag, as you've seen w/ the debugger. I think it just means that it's dangerous to leave that flag enabled for general web surfing, and we can't help (support) your computer, if turning the sandbox off leads to a vulnerability being exploited and that leaves your computer in a bad state.- Jan